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METHOD AND APPARATUS FOR SECURE TRANSMISSION 
OF IDENTIFIER FOR REMOVABLE STORAGE MEDIA 



TECHNICAL FIELD OF THE INVENTION 

The present invention relates in general to data 
storage devices that have a removable data storage 
cartridge and, more particularly, to a method and 
apparatus for linking a block of information to a 
particular removable cartridge in which it is stored. 
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BACKGROUND OF THE INVENTION 

Computer technology has evolved very rapidly over 
the past twenty- five years. Further, as one aspect of 
this, use of the Internet has grown extremely rapidly 
over the past five years. In association with the growth 
in these areas, progressively increasing amounts of 
information are becoming available in digital form. Also 
computer technology has made it very easy to create 
copies of information that is in digital form. 

There are certain types of information as to which 
it is desirable to have the capability to distribute the 
information in digital form, but as to which there may be 
restrictions on copying of the information, for example 
where the information is protected by copyright laws. 
One example is music in digital form, such as a digital 
version of a song performed by a popular artist. An 
application program handling a block of information that 
represents music in digital form may wish to store this 
information on the storage media located in a removable 
data storage cartridge. However, in order to avoid 
unauthorized copying of this information, the application 
program may wish to tie this information to the specific 
physical cartridge in which the information is stored. 
If someone then copied that information to a different 
cartridge in an unauthorized manner, the application 
program could detect this and treat the unauthorized copy 
as invalid. Considerations of this type are commonly 
referred to as Digital Rights Management (DRM) issues. 

As a practical matter, communications between the 
application program and the removable cartridge will 
usually need to pass through one or more intermediate 
software routines. As is well known, there are many 
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computer experts, commonly referred to as "hackers", who 
enjoy the challenge of trying to break or "hack" any form 
of computer- related security scheme, especially security 
schemes that seek to prevent unauthorized copying of 
5 digital information. In the situation of interest here, 

a hacker would typically attempt to gain undetected 
access to the channel of communication between the 
application program and the removable cartridge currently 
installed in the system. For example, the hacker might 

^fo attempt to modify the program code of one of the existing 

|y routines through which this communication channel 

extends. Alternatively, the hacker might attempt to 
insert between two of the existing programs along the 

s communication channel an undetectable additional program 

5 ;15 known as a shim. 

F!J If a hacker is able to gain undetected access to the 

O channel of communication between the application program 

? " 1 and the removable cartridge, the hacker can alter 

information passing between the application program and 

2 0 the cartridge in a manner which will fool the application 

program into believing that the removable cartridge 
currently installed in the system is really a different 
removable cartridge. This in turn gives the hacker the 
capability to thwart any attempt by the application 
25 program to tie a particular block of information to one 

particular cartridge. This is because, when the 

application program reads that block of information from 
a cartridge, it will never know with certainty whether 
the cartridge it is reading the information from is the 

3 0 cartridge that the information is supposed to be on, or 

some other cartridge . 
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Thus, the application program could be made to treat 
both the original copy on one cartridge and unauthorized 
copies on other cartridges as valid, which in turn means 
that the hacker could make a large number of unauthorized 
copies and pass them off as valid copies. Accordingly, 
in order to give an application program the capability to 
tie a block of information to a particular cartridge on 
which it is stored, a technique is needed for passing at 
least some information between the application program 
and cartridge in a manner so that it is difficult or 
impossible for a hacker to alter that information without 
detection . 
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SUMMARY OF THE INVENTION 

From the foregoing, it may be appreciated that a need has 
arisen for a method and apparatus for permitting a block 
of digital information to be tied to a particular 
physical storage media on which the information is 
stored. According to the present invention, a method and 
apparatus are provided to address this need, and involve: 
associating a unique identifier with a cartridge having 
an information storage media therein; providing a 
receiving section into which the cartridge can be 
removably inserted, the receiving section being 
operatively coupled to a further section; responding to 
the occurrence of a predetermined event when the 
cartridge is removably inserted in the receiving section 
by causing the receiving section to transmit to the 
further section public key information and an encrypted 
segment, where the encrypted segment has been formed 
through asymmetric encryption with a private key of a 
data segment which includes the unique identifier; and 
decrypting the encrypted segment in the further section 
as a function of the public key information, in order to 
obtain access to the unique identifier. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

A better understanding of the present invention will 
be realized from the detailed description which follows, 
taken in conjunction with the accompanying drawings, in 
which: 

FIGURE 1 is a diagrammatic view of a system 10 which 
embodies the present invention, and which includes a host 
computer coupled by a cable to a drive that can receive a 
removable data storage cartridge; 

FIGURE 2 is a block diagram of the system of 
FIGURE 1, showing selected components disposed within the 
host computer, the drive and the cartridge ,- 

FIGURE 3 is a block diagram showing how certain 
information flows within the system of FIGURE 1, in a 
manner encompassed by the present invention; and 

FIGURES 4-6 are respective flowcharts that each show 
a sequence of operations which is carried out by a 
respective different software routine within the system 
of FIGURE 1, and which embodies aspects of the present 
invention . 
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DETAILED DESCRIPTION OF THE INVENTION 

FIGURE 1 is a diagrammatic view of a system 10 which 
includes a host computer 12 and a data storage device 13, 
the computer 12 and storage device 13 being operative ly 
coupled by a cable 14 . The hardware of the computer 12 
is a commercially available product of the type commonly 
known as a personal computer. Suitable products of this 
type are available from Dell Computer Corporation of 
Austin, Texas. Communications through the cable 14 are 
effected according to an industry standard protocol, for 
example the industry standard Universal Serial Bus (USB) 
protocol, the industry standard Small Computer System 
Interface (SCSI) protocol, the industry standard IEEE 
1394 protocol promulgated by the Institute of Electrical 
and Electronic Engineers (IEEE) , or some other suitable 
existing or future protocol. 

The data storage device 13 includes a cradle or 
drive 21 with an upwardly open recess, and a data storage 
cartridge 22 which is removably inserted into the recess 
in the drive 21. The cartridge 22 is inserted into and 
removed from the drive 21 in approximately vertical 
directions, as indicated diagrammat ically in FIGURE 1 by 
a double-headed arrow 23. 

FIGURE 2 is a high-level block diagram of the system 
10 of FIGURE 1, showing selected internal components of 
the host computer 12 and the data storage device 13 . 
FIGURE 2 is not intended to show all internal components 
of the computer 12 or the device 13, but instead depicts 
a subset of their internal components which will 
facilitate an understanding of the present invention. In 
this regard, the cartridge 22 has a connector 36, and the 
drive 21 has a connector 37, and the connectors 3 6 and 3 7 
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are releasably engaged when the cartridge 22 has been 
properly inserted into the drive 21, as shown 
diagrammatically in FIGURE 2. The connectors 36-37 
electrically couple circuitry within the cartridge 22 to 
5 circuitry within the drive 21. 

The cartridge 22 includes a rotatably supported 
magnetic hard disk 41 of a known type. The disk 41 
serves as a media within the cartridge 22 on which 
digital information can be stored. A disk support 

10 section 42 includes structure and circuitry of a type 

known in the art, which facilitates transfer of data to 
and from the disk 41. For example, the disk support 
section 42 includes a not - illustrated spin motor which 
effects rotation of the disk, a not -illustrated arm which 
-15 is pivotally supported and which supports a read/write 

head for movement adjacent a magnetic surface of the disk 
41, and a not - illustrated voice coil motor (VCM) which 
controls pivotal movement of the arm. Further, the disk 
support section 42 includes a not-illustrated 

20 preamplifier which processes electrical signals traveling 

between the drive 21 and the disk 41. The configuration 
and operation of the disk support section 42 represents 
technology which is known in the art, and the internal 
structure of the disk support section 42 is therefore not 

25 illustrated and described here in detail. 

The cartridge 22 also includes a secure memory 
device (SMD) 46, which in the enclosed embodiment is 
commercially available as part number AT88SC153 from 
Atmel Corporation of San Jose, California. The SMD 46 is 

3 0 capable of storing a limited amount of information with a 

level of security that prevents an external device from 
accessing the stored information unless the external 



ATTORNEY DOCKET NO. 
067470 . 0137 



PATENT APPLICATION 



device successfully carries out interaction with the SMD 
according to an authentication procedure. The cartridge 
22 also has a phosphor tag 47 on an external surface 
thereof, for a purpose discussed later. 
5 The drive 21 includes a microprocessor 61 of a known 

type, which executes a drive firmware program indicated 
diagrammatically at 62. The drive firmware 62 can 

interact with the SMD 46, and can transfer data to and 
from the disk 41 through the disk support section 42. 

J|o The drive 21 also includes a sensing section 66 which, 

when the cartridge 22 is present in the drive 21, is 

-3 adjacent and aligned with the phosphor tag 47 provided on 

the cartridge. The sensing section 66 is controlled by 

%:i the drive firmware 62 . 

fl5 Under control of the drive firmware 62, the sensing 

?n section 66 can briefly illuminate the phosphor tag 47 

M with a red light emitting diode (LED) , which is not 

separately illustrated, and which causes the phosphor tag 
4 7 to absorb radiation. The LED is then turned off, and 
2 0 the phosphor tag 4 7 emits radiation which it has 

absorbed. A not -illustrated sensor in the sensing 
section 66 can measure one or more characteristics of the 
emitted radiation, such as its amplitude and decay rate, 
or some other characteristic. Different characteristics 
25 identify different types of cartridges. 

For example, different versions of the cartridge 22 
may have disks 41 with differing amounts of storage 
capacity. It is possible for the drive 21 to determine 
which of these versions of the cartridge is currently 
30 inserted, based on the characteristics of the radiation 

emitted by the phosphor tag 47 on that cartridge. This 
provides the drive 21 with some knowledge about what is 
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located inside the cartridge 22, which helps the drive 21 
interact with the cartridge 22. Further, the drive 21 
can use the information obtained from the phosphor tag 47 
to distinguish between cartridges with which it is 
5 compatible, and cartridges with which it is not 

compatible. The configuration and operation of the 
sensing section 66 represents technology which is known 
in the art, and the sensing section 66 is therefore not 
illustrated and described here in further detail. 
•|o The host computer 12 includes a microprocessor 71 of 

'■\ a known type, which executes an operating system 72. The 

operating system 72 may be any suitable operating system 
^ that is available commercially available, such as one of 

j l the operating systems sold under the tradename WINDOWS by 

;|L5 Microsoft Corporation of Redmond, Washington. The 

") processor 71 also executes driver software 73, which 

2 includes routines developed by the manufacturer of the 

;j; data storage device 13 in order to provide an interface 

between the data storage device 13 and application 
2 0 programs running within the processor 71. One such 

application program is indicated at 76, and is also 
referred to here as third-party software in order to 
emphasize that, except for a small portion thereof 
referred to as a toolkit 77, the application program 76 
25 originates from a person or entity other than the entity 

which manufactures the data storage device 13 and the 
associated driver software 73 . The toolkit 77 includes a 
series of software routines that can be called by the 
application program 76, and that each know how to find 
30 and communicate with the driver software 73. The toolkit 

originates from the manufacturer of the data storage 
device 13 and driver software 73, in order to provide 
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various application programs with a simple and standard 
tool that they can use to accurately and reliably 
communicate with the driver software 73 . 

There are certain types of information which it is 
5 desirable to have in digital form, but as to which it is 

also desirable to prevent unauthorized copying. One 
example is music in digital form, such as a song by a 
popular artist. It is desirable that the capability 
exist to sell and deliver a copy of this music in digital 

10 form, for example through the Internet, but there is also 

a desire that a technique be provided to prevent the 
purchaser from making unauthorized copies of the 
purchased copy. Issues of this type are commonly 
referred to as Digital Rights Management (DRM) issues. 

15 In the disclosed embodiment, the application program 

76 handles digital information of this general type, as 
to which unauthorized copying is to be prevented. The 
application program 76 has the capability to tie a 
particular block of digital information to the particular 

20 cartridge 22 containing the disk 41 on which the 

information is stored. Once the application program 76 
has stored the block of information in a particular 
cartridge 22, the application program will treat that 
block of information as valid only so long as it is read 

25 from that same cartridge 22. If that block of 

information is copied to a second cartridge, and if the 
second cartridge is then inserted into the drive 21, the 
application program 76 will refuse to recognize the block 
of information, because it is on a cartridge different 

30 than the cartridge in which the application program 

stored that block of information. 
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In order to implement this approach to digital 
rights management, the present invention provides the 
application program 76 with the capability to reliably 
and uniquely identify each cartridge 22 . More 
5 specifically, each cartridge 22 is given a unique 

identifier in the form of a unique serial number. 
Further, the invention provides a technique that permits 
the application program 76 to obtain that unique serial 
number from the cartridge 22 in an authenticated and 

10 unaltered form. 

This is because, as is well known, there are many 
computer experts who enjoy the challenge of trying to 
defeat security schemes, particularly those schemes which 
are intended to prevent unauthorized copying. These 

15 persons are often referred to as "hackers". The 

application program 76 can be written to protect itself 
from hackers, but would typically not be in a good 
position to protect itself from attempts by a hacker to 
make undetectable alterations to communications traveling 

20 between the application program 76 and the cartridge 22. 

For example, a hacker might modify the software of an 
existing routine along the path of communications, such 
as the driver software 73, or might insert an additional 
program known as a shim between two existing programs 

25 along that path, such as the application program 76 and 

the driver software 73. Through some technique of this 
type, a hacker could attempt to replace an actual serial 
number from the cartridge 22 with a substitute serial 
number that is passed on to the application program 76, 

30 in an attempt to fool the application program 76 into 

thinking that the cartridge actually disposed in the 
drive 21 is a different cartridge. One feature of the 
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present invention is that it provides an extremely high 
level of assurance that a serial number can be reliably 
delivered from a cartridge 22 to the application program 
76 in an authenticated and unaltered form, so that the 
5 application program 76 has an extremely high level of 

confidence that it can accurately identify which 
particular cartridge 22 is currently present in the drive 
21. This technique will now be explained in more detail, 
with reference to FIGURE 3 . 

*:io FIGURE 3 is a block diagram showing a flow of 

information according to one form of the present 

0 invention. FIGURE 3 includes a diagrammatic 

representation of the cartridge 22, including the disk 41 

U1 and the SMD 4 6 disposed therein. FIGURE 3 also has 

f-fS broken lines which diagrammatically indicate the drive 

firmware 62, the driver software 73 and the toolkit 77. 

Q Further, a factory 101 which manufactures the cartridge 

22 is indicated diagrammatically by broken lines. 

As will become evident from the discussion which 
20 follows, the present invention uses data encryption to 

contribute to the security of certain data being 
transferred within the system 10. As is known in the 
art, encryption schemes are generally classified as 
either symmetric or asymmetric . In a symmetric 

25 encryption scheme, a single key is to encrypt the data 

and also to subsequently decrypt the data. In an 
asymmetric encryption scheme, one key is used to encrypt 
the data, but it cannot be used to thereafter decrypt 
that encrypted data. Instead, an entirely different key 
3 0 is needed to decrypt the encrypted data. 

One of the two keys for asymmetric encryption is 
usually subject to a higher level of security than the 
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other key. The key with the higher level of security is 
commonly referred to as a private key, and the other key 
is commonly referred to as a public key. Depending on 
the particular circumstances, the private key may be 
5 either the key which is used for encryption, or the key 

which is used for decryption. 

Various different types of asymmetric encryption are 
known in the art, and the disclosed embodiment uses one 
of these known techniques. More specifically, the 
%0 disclosed embodiment uses an existing technique which is 

1 commonly known as elliptic curve cryptography (ECC) . 
;| However, other types of encryption could be used for the 
n present invention, including not only techniques that are 
rj already known, but techniques that may be developed in 
,15 the future. 

« Turning now in more detail to FIGURE 3, the factory 

«j 101 maintains two lists 103 and 104, which each include a 

■j plurality of private keys. In the disclosed embodiment, 

each of these lists contains fifty keys, but each list 

2 0 could alternatively contain a larger or smaller number of 

keys . 

The list 103 is a factory private key list (L4) , 
which has fifty entries or records that each include a 
respective different factory key (FK) 106, and a 
25 respective factory key index number (FKI#) 107. The list 

103 is subject to strict security within the factory 101, 
and the keys in the list are used only within the factory 
101. None of the keys 106 in the list 103 ever leave the 
factory 101. 

3 0 The second list 104 is a drive private key list 

(L3) , and each entry in this list includes a respective 
different drive key (DK) 111, and a respective drive key 
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index number (DKI#) 112. The list 104 is also maintained 
under strict security within the factory. The drive keys 
DK 111 do leave the factory 101, but only one of the 
drive keys DK 111 leaves the factory 101 in any given 
cartridge 22, as discussed below. 

When a cartridge 22 is being manufactured by the 
factory 101, one of the entries in table 103 is selected, 
and one of the entries in table 104 is selected. 
Further, a unique identifier is selected at 116. In the 
disclosed embodiment, the unique identifier 116 is a 
media serial number (MS#) , but the present invention 
encompasses the use of some other form of unique 
identifier. The media serial number MS# is stored in 
three different forms within the cartridge 22. First, it 
is stored on the disk 41 in an unencrypted form. Second, 
it is stored within the SMD 46 in an identical 
unencrypted form. Third, the factory private key FK 106 
from the selected entry of the list 103 is used at 121 to 
effect asymmetric encryption of a data segment which is 
the media serial number MS#, in order to obtain an 
encrypted data segment which is a factory encrypted media 
serial number (FEMS#) . The factory encrypted media 
serial number (FEMS#) is then stored within the SMD 46. 
The factory key index number FKI# 107, the drive private 
key DK 111, and the drive key index number DKI# 112 from 
the selected entries in lists 103 and 104 are also each 
stored in the SMD 4 6 in an unencrypted form. The 
cartridge 22 is subsequently shipped from the factory for 
commercial sale and operational use. 

With reference to FIGURE 2, it is assumed for 
purposes of discussion that the cartridge 22 is installed 
in the system 10 at some point after it has been shipped 
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by the factory 101, and that the application program 7 6 
wishes to obtain the media serial number MS# for the 
cartridge 2 2 in an authenticated and unaltered form. 
Referring to FIGURES 2 and 3, this is carried out in the 
5 following manner. 

The application program 76 places a call to one of 
the routines in the toolkit 77, which is represented 
diagrammatically in the lower portion of FIGURE 3 . This 
toolkit routine is designed to generate a request for an 

' 10 authenticated transfer (AT) of the media serial number 

MS# from the cartridge 22 back to the toolkit routine. 
This toolkit routine begins by generating a random number 
R#l at 126, using techniques which are known in the art. 
This random number may be either a true random number, or 

= 15 a pseudo-random number, and serves as a form of security 

code, as discussed later. The toolkit routine saves the 
random number R#l for subsequent use in a manner 
discussed later. The toolkit routine generates a request 
12 7 for the authenticated transfer of the media serial 
20 number MS# . The request 127 includes the random number 

R#l. The toolkit routine transmits the request 127 to 
the driver software 73 . 

The driver software 73 responds to receipt of the 
request 127 by generating a second random number R#2 , as 
25 indicated diagrammatically at 131. This random number is 

generated using known techniques, and may be either a 
true random number, or a pseudo- random number, and serves 
as a form of security code, as discussed later. The 
driver software 73 inserts this second random number R#2 
3 0 into an available space within the request 12 7, and also 

saves both of the random numbers R#l and R#2 for 
subsequent use, as discussed later. At 132, the driver 
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software 73 then forwards the modified request 12 7 
through the cable 14 to the drive firmware 62 within the 
drive 2 1 . 

With reference to FIGURE 2, the drive firmware 62 
5 responds to receipt of the request 127 by first using the 

sensing section 166 to illuminate the phosphor tag 47 on 
the cartridge, and to thereafter sense characteristics 
such as the amplitude and decay time of the radiation 
emitted by the tag 47. Using this sensed information, 
•ilO the drive firmware 62 verifies that the cartridge 22 

0 which is present in the drive 21 is compatible with the 

«j drive 2 1 . 

; ; Next, the drive firmware 62 takes the steps 

m necessary to authenticate with the secure memory device 

.J.5 SMD 46 in the cartridge 22, in order to obtain access to 

«* the data stored within the SMD. The drive firmware 62 

;j then reads out this data which, as discussed above, 

j includes the unencrypted media serial number MS#, the 

factory encrypted media serial number FEMS#, the factory 
20 key index number FKI#, the drive key DK, and the drive 

key index number DKI#. The drive firmware 62 also reads 
the media serial number MS# which is stored on the disk 
41. Then, at 141, the drive firmware 62 compares the MS# 
obtained from the disk 41 with the MS# obtained from the 
25 SMD 46, in order to verify that they are the same. If 

they are different, then there is an error or problem, 
and the firmware 62 takes appropriate action, as 
discussed later. 

Assuming that the numbers compared at 141 are found 
3 0 to be the same, the drive firmware 62 next prepares a 

data segment 143 which includes the two random numbers 
R#l and R#2 received in the request 12 7, and which also 



ATTORNEY DOCKET NO. 
067470 . 0137 



PATENT APPLICATION 



18 

includes the values obtained from the SMD 46 for the 
media serial number MS#, the factory encrypted media 
serial number FEMS#, and the factory key index number 
FKI#. Then, at 146, the drive firmware 62 uses the drive 

5 key DK obtained from the SMD 4 6 to effect asymmetric 

encryption of the data segment 143. Then, the drive 
firmware 62 passes this encrypted data segment through 
the cable 14 to the driver software 73 , along with the 
drive key index number DKI# obtained from the SMD 46. 

0 The driver software 73 includes a list (L2) which is 

indicated at 151. The list 151 has the same number of 
entries as the list 104 in the factory 101, which in the 
disclosed embodiment is fifty entries. Each entry in the 
list 151 contains a drive public key which is different 

5 from but corresponds to a respective one of the drive 

private keys in the list 104. That is, each drive public 
key in the list 151 can decrypt information that was 
encrypted by the corresponding private key in the factory 
list 104. In order to obtain the proper key from the 

0 list 151, the driver software 73 uses the drive key index 

number DKI# received from the drive firmware 62 as an 
index to the list 151, in order to identify an entry 152 
which contains the drive public key that will properly 
decrypt the data segment which was encrypted at 146. The 

5 driver software 73 then uses this drive public key 152 

from the list 151 in order to effect decryption at 154 of 
the encrypted data segment received from the drive 
firmware 62. The decryption at 154 yields in unencrypted 
form the data segment 143 that was prepared by the drive 

0 firmware 62 and then encrypted at 146. 

At 161, the driver software 73 takes the random 
number R#l which it previously saved, and compares it to 
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the random number R#l from the data segment 143 it 
decrypted, in order to verify that they are equal. 
Similarly, at 162, the driver software 73 takes the 
random number R#2 which it previously saved, and compares 
5 it to the random number R#2 from the data segment 143 it 

decrypted, in order to verify that they are equal. If 
any discrepancy is detected in either comparison at 161 
or 162, then there is a problem and the driver software 
73 takes appropriate action, as discussed later. 

10 Assuming that no problem is detected, the driver software 

73 will take the encrypted data segment and drive key 
index number DKI# that it received from the drive 
firmware 62, and pass these items in unaltered form to 
the routine in the toolkit 77. 

15 This toolkit routine maintains the exact same key 

list 151 as the driver software 73. The toolkit routine 
uses the factory key index number FKI# as an index to the 
list 151, in the same manner that the driver software 73 
used it as an index, in order to identify the drive 

20 public key 152 which will decrypt the data segment that 

was encrypted at 146. At 171, the toolkit routine uses 
the selected key 152 to decrypt this encrypted data 
segment, in order to obtain in unencrypted form the data 
segment 143 that was prepared by the drive firmware 62 . 

25 The decryption carried out at 171 by the toolkit routine 

is equivalent to the decryption carried out at 154 by the 
driver software 73 . 

Next, at 173, the toolkit routine takes the random 
number R#l which it previously stored, and compares it to 

3 0 the random number R#l from the data segment 143 that it 

decrypted. If they are not equal, then there is a 
problem, and the toolkit routine takes appropriate 
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action, as discussed later. Assuming that the numbers 
compared at 173 are found to be equal, the toolkit 
routine next effects decryption of the factory encrypted 
media serial number FEMS#. 

5 In this regard, the toolkit routine maintains a list 

(LI) which is indicated at 176. The list 176 contains a 
plurality of factory public keys, each of which is 
different from but corresponds to a respective one of the 
keys in the factory private key list 103 maintained in 

0 the factory 101. The toolkit routine uses the factory 

key index number FKI# from the data segment 143 as an 
index to the list 176, in order to select a respective 
one of the keys from the list 176 which will properly 
decrypt the factory encrypted media serial number FEMS# . 

5 Then, at 181, the toolkit routine uses the selected key 

177 from the list 176 to decrypt FEMS#, in order to 
thereby obtain from FEMS# the media serial number MS# 
indicated at 183. 

The toolkit routine then takes the media serial 

0 number MS# obtained at 183 by decryption, and compares it 

at 186 with the media serial number MS# present in the 
data segment 143 which it decrypted at 171. If they are 
not equal, then there is a problem, and the toolkit 
routine can take appropriate action, as discussed later. 

5 But assuming that the numbers compared at 18 6 are found 

to be equal, then the media serial number MS# at 183 is 
an authenticated and unaltered serial number from the 
cartridge 22, and can be reliably used as a unique 
identifier for the cartridge 22 and the storage media 

0 therein, which is the disk 41. The toolkit routine 77 

then passes this authenticated media serial number MS# 
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183 to the application program 76 (FIGURE 2) in which the 

toolkit routine is embedded. 

FIGURES 4-6 are flowcharts which collectively show 

in a different form the sequence of events that was 
5 discussed above with respect to FIGURE 3. In this 

regard, FIGURE 4 represents events which occur within the 

above-discussed routine in the toolkit 77, FIGURE 5 

represents events which occur within the driver software 

73, and FIGURE 6 represents events which occur within the 
i ; l0 drive firmware 62. 

Beginning with FIGURE 4, the illustrated routine 
% begins when the application program 76 (FIGURE 2) makes a 

call to the routine in the toolkit 77, in order to 
in request an authenticated transfer from the cartridge 22 

Z^L5 of its unique identifier, which is the media serial 

number MS#. At block 201, the toolkit routine generates 
q the random number R#l, and stores it for later use. 

\ Then, at block 202, the toolkit routine formulates the 

request 127 (FIGURE 3) , and transmits it to the driver 

2 0 software 73, with the random number R#l therein. Then, 

at block 2 03, the toolkit routine waits for a response. 
Block 2 03 would likely be an interrupt -driven routine, 
rather than an infinite loop, but for simplicity and 
clarity is shown conceptually in FIGURE 4 as an infinite 
25 loop. 

Turning to FIGURE 5, execution of the indicated 
routine begins when the driver software 7 3 receives from 
the toolkit routine the request 12 7 generated at block 
202 (FIGURE 4) . At block 206, the driver software 73 

3 0 generates random number R#2, and inserts it into the 

request 127. Then, at block 207, the driver software 73 
stores both of the random numbers R#l and R#2 from the 
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request 12 7. Next, at block 2 08, the driver software 73 
transmits the modified request 127 to the firmware 62 in 
the drive 21. Then, at block 211, the driver software 
waits for a response. This wait would likely be 
implemented as an interrupt -driven routine, but for 
clarity it is shown conceptually in FIGURE 5 as an 
infinite loop. 

Turning to FIGURE 6, execution of the illustrated 
routine begins in response to receipt by the drive 
firmware 62 of the request 12 7 that was forwarded at 
block 2 08 (FIGURE 5) . At block 216, the drive firmware 
62 checks the cartridge's phosphor tag 47 (FIGURE 2), in 
a manner already described above. Then, at 217, the 
drive firmware 62 evaluates whether there is any problem 
or error associated with the information that it obtained 
from the phosphor tag. If so, then control proceeds to 
block 218, where the drive firmware prepares a report 
which reflects the error, and which will be returned in 
lieu of data from the cartridge. The routine of FIGURE 6 
is then exited at block 219. 

However, assuming that no problem or error was 
detected at block 217, control would proceed from block 
217 to block 221, where the drive firmware 62 carries out 
authentication with the secure memory device SMD 46 
(FIGURE 2) . Then, at block 222, the drive firmware 62 
evaluates whether any problem or error was encountered in 
attempting to authenticate with the SMD 46. If so, then 
control proceeds to block 218 for purposes of reporting 
an error. Otherwise, control proceeds to block 223. 

In block 223, the drive firmware 62 reads from the 
SMD 46 the pertinent elements of information which are 
stored therein, including the media serial number MS#, 
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the factory encrypted media serial number FEMS#, the 
factory key index number FKI#, the drive key DK, and the 
drive key index number DKI#. Then, at block 22 6, the 
drive firmware 62 reads the media serial number MS# which 
5 is stored on the disk 41, and compares it to the MS# 

obtained from the SMD 46. This corresponds to the above - 
discussed comparison at 143 in FIGURE 3. Then, at block 

22 7, the drive firmware 62 checks to see whether the 
compared numbers are the same. If not, then there is a 

0 problem, and control proceeds to block 218 for purposes 

of reporting an error. Otherwise, control proceeds to 
block 228. 

At block 228, the drive firmware 62 forms the data 
segment shown at 143 in FIGURE 3, which includes MS#, 

5 FEMS#, FKI#, R#l and R#2 . Then, at block 231, the drive 

firmware 62 asymmetrically encrypts this data segment 
using the drive key DK obtained from the SMD 46. This 
encryption corresponds to block 146 in FIGURE 3. Next, 
at block 232, the drive firmware 62 transmits to the 

0 driver software 73 the encrypted data segment, along with 

the drive key index number DKI# obtained from the SMD 46 
in the cartridge. Control then proceeds to block 219, 
which represents the end of the routine of FIGURE 6 . 

Referring again to FIGURE 5, the driver software 73 

5 will be waiting at block 211 for a response from the 

drive firmware 62. When a response is received, control 
proceeds to block 236, where the driver software 73 
determines whether the response represents a report of an 
error. This would be the case if control had passed 

0 through block 218 in FIGURE 6. If the drive firmware 62 

has reported an error, then control proceeds from block 

23 6 to block 23 7, where the driver software 73 prepares a 
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report of the error to send back to the toolkit routine 
77. 

On the other hand, if it was determined at block 236 
that the response from the drive firmware did not 

5 represent an error, control would proceed from block 236 

to block 23 8. In block 23 8, the driver software 73 uses 
the drive key index number DKI# received from the drive 
firmware 62 as an index to its list 151 (FIGURE 3) , in 
order to obtain the appropriate drive public key 152, 

0 which it then uses to effect decryption of the encrypted 

data segment that it received from the drive firmware 62 . 
This decryption corresponds to block 154 in FIGURE 3. 

Control then proceeds to block 241, where the driver 
software 73 compares each of the random numbers R#l and 

5 R#2 that it previously stored with the respective 

corresponding random number R#l or R#2 from the data 
segment it decrypted at block 238. These comparisons 
correspond to blocks 161 and 162 in FIGURE 3. Then, at 
block 242, the driver software 73 checks to see whether 

0 the numbers used in each comparison were found to be 

equal. If not, then a problem or error has been 

detected, and control proceeds to block 237, in order to 
report an error back to the routine in toolkit 77. 

Otherwise, control proceeds from block 242 to block 

5 243, where the driver software 73 forwards to the toolkit 

routine in unaltered form the response which it received 
from the drive firmware 62. This response includes the 
encrypted data segment that was prepared in block 231 of 
FIGURE 6, and also the drive key index number DKI#. 

0 Control then proceeds from block 243 to block 24 6, which 

represents the end of the routine of FIGURE 5. 
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Referring back to FIGURE 4, the routine in toolkit 
77 will be waiting at block 2 03 for a response from the 
driver software 73. When a response is received, control 
proceeds from block 2 03 to block 251, where the toolkit 
5 routine checks to see if the response is a report of an 

error or problem. This would be the case if control had 
passed through block 218 in FIGURE 6 and/or block 23 7 in 
FIGURE 5 . If the response is reporting an error, control 
proceeds from block 251 to block 252, where the toolkit 
Jo routine reports the error back to the application program 

76 (FIGURE 2) . 

J Otherwise, control proceeds from block 251 to block 

■ ; ; 253, where the toolkit routine uses the drive key index 

number DKI# that it received from the driver software 73 
% s to access its key list 151, in order to obtain the 

J appropriate drive public key needed to decrypt the 

■=j encrypted data segment that it received from the driver 

1 software 73 . It then uses the selected key 152 to effect 
this decryption, which corresponds to block 171 in 

2 0 FIGURE 3. 

Control then proceeds to block 256, where the 
toolkit routine compares the random number R#l that it 
previously saved with the corresponding random number R#l 
from the data segment that it decrypted at block 2 53 . 
25 This comparison corresponds to block 173 in FIGURE 3. 

Then, at block 257, the toolkit routine checks to see 
whether the numbers used in the comparison were found to 
be equal. If not, then a problem or error has been 
detected, and control proceeds to block 252, in order to 

3 0 report an error back to the application program 76. 

Assuming that the numbers compared in block 256 were 
equal, control would proceed from block 257 to block 258, 
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number FKI# from the data segment it decrypted in block 
253, and uses this index FKI# to access its drive public 
key list 176 (FIGURE 3), in order to obtain the proper 
factory public key 177 needed to decrypt the factory 
encrypted media serial number FEMS# . The toolkit routine 
then uses that selected key 177 to effect decryption of 
FEMS#, which corresponds to block 181 in FIGURE 3. 
Control then proceeds to block 261, where the toolkit 
routine compares the value of MS# obtained through 
decryption at block 258 with the value of MS# present in 
the data segment it decrypted at block 253. This 
corresponds to the comparison at 186 in FIGURE 3. Then, 
at block 2 62, the toolkit routine checks to see whether 
the numbers it compared were equal. If not, then there 
is an error or problem, and control proceeds to block 
252, for purposes of reporting this problem or error to 
the application program 76 (FIGURE 2) . 

Otherwise, control proceeds from block 2 62 to block 
263, where the toolkit routine supplies to the 
application program 76 the media serial number MS# which 
it obtained through decryption at block 258. This value 
of MS# represents an authenticated and unaltered value 
from the cartridge 22, which can be reliably used by the 
application program 76. The routine of FIGURE 6 then 
ends at block 266. 

The present invention provides a number of technical 
advantages. One such technical advantage is the 

capability to pass an authenticated and unaltered media 
serial number from a removable data storage cartridge to 
an application program through one or more intermediate 
routines, in response to an invoked authenticated 
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transfer call by the application program. A related 
advantage is realized from the use of a level of 
asymmetric encryption, in which a private key list is 
maintained at a factory for the cartridges and never 
leaves the factory, and in which a selected one of the 
private keys from that list is used to prepare an 
encrypted version of the media serial number which is 
permanently stored in the cartridge. Because these 
private keys never leave the factory, and since only a 
selected one of these many keys is used in association 
with any given cartridge, it would be extremely difficult 
for someone to prepare a counterfeit version of the 
encrypted information, because they would need 
information that is never available in the public domain. 
Moreover, even if one key from the factory private list 
was somehow determined by a member of the public, it 
would be useless as to the majority of cartridges 
encountered by that person, because those other 
cartridges would contain information encrypted using 
other different keys from the list. 

A further advantage results from the use of a 
further level of asymmetric encryption, in which the 
encryption is effected using a second private key list 
which is also maintained at the factory, where only one 
private key from this second list is placed in any given 
cartridge. Moreover, to the extent that one such key 
from the second list is placed in any given cartridge, it 
is advantageous that the key is stored in a secure memory 
device which can be accessed only after proper 
authentication. Still another advantage results from the 
fact that one or more software routines each have the 
capability to include, in a request for authenticated 
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information, a respective random number, and the fact 
that each such random number is subsequently included in 
an encrypted response to the request. 

Although one embodiment has been illustrated and 
described in detail, it will be understood that various 
substitutions and alterations are possible without 
departing from the spirit and scope of the present 
invention, as defined by the following claims. 



